Comments on: Lying to the SEC, A-Rod’s contract, and everybody gets hacked Steven Brill Tue, 19 Aug 2014 18:30:28 +0000 hourly 1 By: BillO255 Tue, 18 Feb 2014 07:39:59 +0000 Given there are literally thousands of attempted hacking attempts daily, a possible breach at the Times, Washington Post, or Journal seems trivial. The fact that it was a foreign government is no great shock either. Businesses typically do not advertise the fact that they have been breached unless required by law (i.e., patient data) or when it is leaked to media (i.e. the rash of data breaches in retail stores). Otherwise, most businesses simply, and quietly, fix the problem, report it to the authorities if it rates that level of attention, and then move on to the next crises.

The story should not be about who got hacked by whom but about what security holes the company left open that a hacker crawled through and what the company did to fix the problem. Of course, the story could not be printed for at least 24 hours after the fix was in place and fully tested.

Data security is becoming rocket science or magic depending on ones favorite analogy. It is a complicated issue but not one many company’s seem to take seriously considering all of the media stories related to hacks and breaches recently. When it comes to hacks, the media reports on cause and effect but not enough on recovery. As long as that continues businesses will see these events as one-offs that won’t affect them, until it does.